Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38362e302f32342d3234203d3e20323039373337.roa
File: 3231332e3133392e38362e302f32342d3234203d3e20323039373337.roa (raw, json)
Hash identifier: gadg7/Z2c4gOIDjm4aHUYnB9GZWsYxtwnAps0sC/RXc=
Subject key identifier: 9E:E2:E0:7C:53:62:12:F4:5D:3B:1E:E7:11:26:62:3D:F7:67:DF:13
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 10BF0A10A08BCCE98C513E489A36C7459BCD125F
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38362e302f32342d3234203d3e20323039373337.roa
Signing time: Wed 25 Jan 2023 13:02:59 +0000
ROA not before: Wed 25 Jan 2023 12:57:59 +0000
ROA not after: Wed 24 Jan 2024 13:02:59 +0000
asID: 209737
IP address blocks: 213.139.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:bf:0a:10:a0:8b:cc:e9:8c:51:3e:48:9a:36:c7:45:9b:cd:12:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Jan 25 12:57:59 2023 GMT
Not After : Jan 24 13:02:59 2024 GMT
Subject: CN=9EE2E07C536212F45D3B1EE71126623DF767DF13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:64:28:66:fd:72:0b:6e:11:96:cb:91:02:e6:
13:14:8d:5c:dc:c2:2d:27:01:51:8c:51:4d:8c:b3:
7e:49:09:52:29:8d:9b:ea:22:93:21:de:87:a8:ac:
da:95:41:05:c5:4c:03:bd:33:be:e1:40:53:94:98:
4b:fc:e8:fa:8d:41:15:ff:60:a5:25:ee:a2:75:c7:
62:52:df:98:f0:33:94:50:85:00:f7:ef:a1:a9:a1:
18:85:06:d0:38:bc:10:42:f3:57:08:1b:c0:8b:e6:
07:39:da:a4:8b:fe:74:6e:d0:49:57:2e:2f:57:4f:
50:a1:6d:1d:57:07:77:c2:0c:94:1f:d9:be:3f:c3:
6f:f7:a7:2a:4a:30:27:58:bc:0f:f4:9d:f6:bc:b3:
14:82:26:6a:87:65:83:b7:dd:d4:63:82:da:26:20:
e8:27:9f:8c:28:53:e6:b5:37:72:01:6b:42:05:8a:
2f:0e:c3:9e:b4:23:2b:0f:c9:2b:bf:2c:e0:d3:f2:
af:53:21:d4:23:2a:6d:41:fa:bc:2a:3a:9d:aa:f4:
06:2b:0a:2c:f1:fe:a4:43:0d:39:30:35:39:39:49:
d2:7f:d2:51:21:53:ac:df:c1:0e:e3:71:5d:68:2a:
ba:98:8d:d7:d1:c0:cf:2c:ce:f3:05:6e:52:43:e6:
a3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:E2:E0:7C:53:62:12:F4:5D:3B:1E:E7:11:26:62:3D:F7:67:DF:13
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38362e302f32342d3234203d3e20323039373337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.86.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:c2:4c:11:a8:14:f9:7a:fe:5a:4e:b3:3d:e5:42:b9:8d:3d:
b5:1e:ff:53:48:14:1d:d7:2a:2a:a5:a0:52:bb:65:22:94:83:
f2:49:a3:70:73:30:34:75:3e:fc:c0:4c:76:75:7b:57:4b:67:
c4:85:55:02:49:33:a2:47:32:e3:57:a7:42:09:40:5a:0b:3d:
2b:7d:19:1d:7f:52:93:9d:57:71:4a:5e:8e:35:82:9b:0c:90:
5a:66:4d:c7:c0:3a:a1:74:e9:40:a7:a7:a5:b2:8c:fd:95:99:
cb:c6:fc:f9:be:cc:f5:d9:ce:b4:1b:e4:8b:44:cc:9f:34:af:
82:c3:61:9e:6e:0b:36:86:30:d8:78:99:a1:b4:2e:b1:e8:93:
cc:55:22:01:0b:20:f5:a7:49:c2:23:5f:2e:f0:50:36:b1:3b:
77:b9:21:c8:00:d3:a3:2a:e0:fc:79:fc:ff:78:41:96:35:f2:
ae:6b:da:d6:15:61:56:5c:9a:2b:12:ef:57:17:5e:24:60:a8:
15:3a:d9:c3:c1:f9:71:8a:c3:74:8c:ca:87:50:f9:e0:99:10:
23:a5:6b:72:d4:52:81:4b:4b:fe:b7:02:18:90:3f:ab:8b:40:
d4:86:90:29:1a:49:9c:b9:cb:b2:d1:7a:ac:e1:a2:56:99:1f:
07:aa:c2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:50:15 2025 by rpki-client